Cisco FPR – Re-image from FTD to ASA Code
Nov21

Cisco FPR – Re-image from FTD to ASA Code

Posted By on Nov 21, 2021

KB ID 0001766 Problem Note: This procedure is to re-image a Cisco Firepower device from FTD to ASA code, (in this example a Cisco FPR 1010).  Why would you want to do this? Well to be frank FTD is bobbins, so if you have a device running FTD code you might want to ‘convert’ it to ASA code. If you tried to do this with an older firewall (ASA 5500-X) then you needed to go to Cisco TAC and try and get them to give you an...

Read More
Use Azure MFA With Microsoft NPS (RADIUS) Server
Jul20

Use Azure MFA With Microsoft NPS (RADIUS) Server

Posted By on Jul 20, 2021

  KB ID 0001759 Problem I was in a forum last week and someone asked, “Can I enable Azure MFA, on my RADIUS server, to secure access to my switches and routers etc”. It turns out if you want to enable Azure MFA with Microsoft NPS it’s actually quite  simple. So, I’m using RADIUS auth (above) on my NPS server, and it’s simply checking the authenticating user is a member of a domain security group....

Read More
Cisco ASA DHCP Reservation (Solved)
May20

Cisco ASA DHCP Reservation (Solved)

Posted By on May 20, 2021

KB ID 0001751 Problem We have been asking for this for years! Even on my home network I’ve not been able to allocate an ASA DHCP reservation for my laptop and my MyCloud drive. I’ve been in discussions in forums with people who are convinced that putting a static ARP entry into the ASA would solve the problem (it doesn’t – I tested it extensively!) But finally in version 9.13(1) we can now add a static DHCP...

Read More
AnyConnect 4 – Plus and Apex Licensing Explained
May11

AnyConnect 4 – Plus and Apex Licensing Explained

Posted By on May 11, 2021

KB ID 0001013  Problem (Updated 11/05/21) Before version 4 we simply had AnyConnect Essentials and Premium licensing, now we have Plus and Apex licensing. AnyConnect Plus and Apex There are in fact three licensing options; Cisco AnyConnect Plus Subscription Licenses Cisco AnyConnect Plus Perpetual Licenses Cisco AnyConnect Apex Subscription Licenses NEW VPN Only perpetual Licences Plus and Apex Contain; AnyConnect PLUS (Cisco pitch...

Read More
Cisco Catalyst 9200 / 9300 DNA Licensing
May06

Cisco Catalyst 9200 / 9300 DNA Licensing

Posted By on May 6, 2021

KB ID 0001750 Problem I get asked this at least once a month, “What’s the score with this DNA Licensing?” It took long enough for everyone to get used to Lan Base, IP Base, and IP Services! The cynic in me would say, Cisco have learned from Meraki that selling subscription licences is much better than selling products that you don’t get any recurring revenue from. But I’ll try an give you the short answer...

Read More
macOS – SSH Error ‘No Matching Exchange Method Found’
Mar24

macOS – SSH Error ‘No Matching Exchange Method Found’

Posted By on Mar 24, 2021

KB ID 0001245  Problem Note Certified working all the way up to macOS Monterey version 12.0.1 I thought my RoyalTSX had broken today, I upgraded it a couple of weeks ago, and I upgraded to macOS Catalina 10.15 the other day. After this, all my SSH sessions refused to connect with this error;   Unable to negotiate with x.x.x.x port 22: no matching key exchange found. Their offer diffie-hellman-group1-sha1 Note: You may also see the...

Read More